$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa File: f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa (raw, json) Hash identifier: mTcVo0OSO6hk6DTLewbuO5MJwNKnj8PnVaEVH8TqXtI= Subject key identifier: 39:01:CD:A9:F6:34:4C:9E:AC:E7:DF:A2:D7:A3:D4:8C:38:E7:D6:E7 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 44FF615938E67948FF32E0DC7074D9D559984818 Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa Signing time: Fri 25 Apr 2025 15:20:32 +0000 ROA not before: Fri 25 Apr 2025 15:20:32 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 96.127.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 08 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:ff:61:59:38:e6:79:48:ff:32:e0:dc:70:74:d9:d5:59:98:48:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Apr 25 15:20:32 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=c5d9534bc4ecbde90223d0046a8ee1d7c401127b0638aef9185a83146c358f5a, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d8:c4:52:8e:57:2d:c5:0d:19:72:83:1e:6c: 1b:32:78:1c:39:8b:e8:b3:d8:db:b0:a9:23:2f:af: ce:a7:24:3d:aa:b6:95:b5:3e:16:56:b5:cc:9a:1d: 71:50:b5:d0:cc:8e:ae:74:c4:b1:90:92:17:bd:46: 0a:85:33:f0:f2:2e:1b:f5:69:04:3d:a4:38:c4:fe: 3c:78:65:6a:40:ed:98:de:56:73:18:d6:56:25:33: 10:55:64:78:1a:cd:87:ee:aa:6f:c3:35:04:38:76: 42:09:d6:88:e1:0a:3e:12:b1:e6:d8:66:86:b8:a9: 13:65:8c:8a:c5:10:fe:39:ae:20:95:36:ba:1c:54: 5d:9a:03:8d:bb:57:45:af:e8:0c:fd:3f:cb:b1:41: e0:82:9f:a6:2f:af:b0:20:68:c4:b4:18:13:39:c0: 69:20:98:0d:4f:9d:93:63:18:00:15:1c:9f:23:ce: 2c:ac:0f:00:4f:6d:96:79:33:9f:60:20:43:14:ba: b5:9d:d9:69:2e:13:89:7d:64:50:16:34:63:f6:9a: ad:51:92:18:88:26:80:f6:6e:71:58:70:b8:88:a0: 4e:a3:50:9a:79:4a:08:b0:e2:9b:91:0a:14:c5:48: 1a:1c:72:9e:a0:ee:77:40:9a:0d:ba:49:f2:1c:d0: 31:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:01:CD:A9:F6:34:4C:9E:AC:E7:DF:A2:D7:A3:D4:8C:38:E7:D6:E7 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/f2e5e11c-f4e0-4f91-8ed1-a6cba6c5e288.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.127.0.0/17 Signature Algorithm: sha256WithRSAEncryption 7e:a7:c7:1f:0b:9a:82:37:5f:65:df:39:92:22:3b:1b:4b:1d: 71:0c:2c:c4:9f:81:1c:14:d4:a4:dc:6b:0a:cb:1f:88:2b:92: c5:63:48:45:1c:0a:9c:26:77:af:6b:f2:c7:b0:fd:68:7d:e5: ec:9e:3f:62:ec:c8:65:2d:cc:7f:30:3c:ef:99:ae:ba:bd:0e: 6d:53:48:21:7f:49:08:2e:9b:a2:f3:48:3f:52:c9:c1:f1:1d: 9c:0d:11:6b:71:d5:f3:fc:a9:46:7d:95:3f:98:74:93:01:7a: 19:b5:b0:33:b4:45:f0:34:e6:63:d8:82:6c:9d:0b:03:7d:86: e9:e5:f4:8a:9a:1e:3a:90:a8:70:51:37:ef:69:df:f9:48:92: 1d:43:72:34:c5:9b:d2:ad:fc:81:34:8b:70:1d:0d:9b:94:6b: d4:31:82:34:b5:f3:e6:f8:da:ee:3c:94:33:07:df:c2:c0:e3: b2:d1:39:cb:24:84:37:4c:00:3a:06:e5:ba:0b:61:77:9a:26: cd:32:3f:be:58:32:f8:ca:83:fe:5e:b7:c8:35:10:0c:9c:9a: 9e:15:06:09:a9:15:08:da:3a:43:12:d8:b9:dd:89:46:ca:07: de:fd:b0:5c:b9:68:95:29:98:d1:dc:09:b4:9b:8d:c8:fb:9b: 4a:fe:39:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURP9hWTjmeUj/MuDccHTZ1VmYSBgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjUwNDI1MTUyMDMyWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNWQ5NTM0YmM0ZWNiZGU5MDIyM2QwMDQ2YThlZTFkN2M0 MDExMjdiMDYzOGFlZjkxODVhODMxNDZjMzU4ZjVhMS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw2MRSjlctxQ0ZcoMebBsyeBw5i+iz2NuwqSMvr86nJD2q tpW1PhZWtcyaHXFQtdDMjq50xLGQkhe9RgqFM/DyLhv1aQQ9pDjE/jx4ZWpA7Zje VnMY1lYlMxBVZHgazYfuqm/DNQQ4dkIJ1ojhCj4SsebYZoa4qRNljIrFEP45riCV NrocVF2aA427V0Wv6Az9P8uxQeCCn6Yvr7AgaMS0GBM5wGkgmA1PnZNjGAAVHJ8j ziysDwBPbZZ5M59gIEMUurWd2WkuE4l9ZFAWNGP2mq1RkhiIJoD2bnFYcLiIoE6j UJp5Sgiw4puRChTFSBoccp6g7ndAmg26SfIc0DFdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOQHNqfY0TJ6s59+i16PUjDjn1ucwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1L2YyZTVlMTFjLWY0ZTAtNGY5MS04ZWQxLWE2Y2JhNmM1ZTI4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdgfwAwDQYJKoZIhvcNAQELBQADggEBAH6nxx8LmoI3X2XfOZIiOxtLHXEM LMSfgRwU1KTcawrLH4grksVjSEUcCpwmd69r8sew/Wh95eyeP2LsyGUtzH8wPO+Z rrq9Dm1TSCF/SQgum6LzSD9SycHxHZwNEWtx1fP8qUZ9lT+YdJMBehm1sDO0RfA0 5mPYgmydCwN9hunl9IqaHjqQqHBRN+9p3/lIkh1DcjTFm9Kt/IE0i3AdDZuUa9Qx gjS18+b42u48lDMH38LA47LROcskhDdMADoG5boLYXeaJs0yP75YMvjKg/5et8g1 EAycmp4VBgmpFQjaOkMS2LndiUbKB979sFy5aJUpmNHcCbSbjcj7m0r+Ob0= -----END CERTIFICATE-----Generated at Tue May 6 17:30:34 2025 by rpki-client